Note:
This project will be discontinued after December 13, 2021. [more]
2018-10-30
There exists a heap-based buffer overflow in vc1_decode_p_mb_intfi in vc1_block.c in Libav 12.3, which allows attackers to cause a denial-of-service via a crafted aac file.
Products | Libav |
Type | Out-of-bounds Write (CWE-787) |
First patch | - None (likely due to unavailable code) |
Links | https://bugzilla.libav.org/show_bug.cgi?id=1135 |